Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 95% confidence
- Finding
- The skill documentation advertises use of environment variables, filesystem reads/writes, and network-backed LLM/TTS services, yet no explicit permissions are declared. This creates a transparency and governance gap: users or platforms cannot accurately assess what resources the skill will access before execution. In this context, the risk is elevated because the skill handles child-related personalization data and persists state across runs.
